The latest attack against Exchange servers utilizes at least two new flaws (CVE-2022-41040, CVE-2022-41082) that have been assigned CVSS scores of 6.3 and 8.8.
September 30, 2022
According to Microsoft 365 Defender Research Team, in an incident they analyzed, malicious OAuth applications were deployed on compromised cloud tenants, and eventually, attackers took over Exchange servers to carry out spam campaigns.
September 23, 2022
Dubbed GIFShell; the technique allows attackers to create a reverse shell to facilitate malicious command delivery via base64-encoded GIFs in MS Teams.
September 12, 2022
Nitrokod crypto miner mines Monero (XMR) coin on infected devices and so far it has targeted 111,000 unsuspecting users in 11 countries.
August 30, 2022
According to a Microsoft spokesperson, it will not be possible to change the current situation with Tutanota. Tutanota…
August 6, 2022
According to Microsoft, hackers are exploiting the IIS web servers to install backdoors and steal credentials in their…
July 28, 2022
Research reveals that around 80% of all malware attacks used MS Office flaws. Atlas VPN has shared its…
July 21, 2022
Those still using older versions of the Android operating system are at risk. Microsoft’s 365 Defender team has detected a…
July 5, 2022
Nao_Sec cybersecurity researchers state the “odd-looking” MS Word document was uploaded on VirusTotal from a Belarus IP address.…
May 30, 2022
The privacy-oriented search engine and browser provider DuckDuckGo has received flak after a researcher identified Microsoft Trackers in…
May 25, 2022